Newsletters
The Enterprise Security Supersite NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
Home Network Security Viruses & Malware Cybercrime Security Solutions More Topics...
Mobile Tech
Tame your scariest paperwork. Find Out How
Average Rating:
Rate this article:  
Samsung Patches Remote Wipe Vulnerability
Samsung Patches Remote Wipe Vulnerability

By Jennifer LeClaire
September 26, 2012 10:17AM

Bookmark and Share
The Samsung remote wipe vulnerability goes beyond corporate concerns for ex-employees. Should all Android users be worried? What about iPhone users? Windows Phone users? Analyst Brad Shimmin said security experts from both the white-hat and black-hat camps are no doubt testing other platforms.
 


Putting an end to potential panic, Samsung is delivering a patch to fix a remote wipe vulnerability over the air. But that's not the only trouble story about the Android operating system coming out of the security world this week.

Samsung Galaxy S III owners are ripe for attack in the face of a vulnerability that could allow a remote attacker to wipe all of their personal data from the mobile device. According to Ravi Borgaonkar, a researcher from the Security in Communications Department at Technical University Berlin, Samsung smartphones with the TouchWiz interface appear to be the only Android phone the flaw affects.

"This is a scary vulnerability because we are already troubled by the thought that the companies we work for can just reach out and destroy our data," Brad Shimmin, an analyst at Current Analysis, told us. "From a corporate perspective one of the biggest concerns you have is data leakage. So it's imperative that the company be able to take remote control of that information."

More Android Flaws

But this vulnerability goes beyond corporate concerns for ex-employees. Should all Android users be worried? What about iPhone users? Windows Phone users? Although the vulnerability is seemingly only on Samsung devices, Shimmin said security experts from both the white-hat and black-hat camps are no doubt testing other platforms. If the vulnerability is on other platforms, Shimmin is confident there will be a report and a fix within the next week.

Meanwhile, subway riders in the New Jersey and San Francisco transit systems can use near-field communication (NFC) Android smartphones to endlessly replenish their fare cards for free, according to Sophos security analyst Lisa Vaas. The app is called UltraReset and researchers at Intrepidus Group developed it.

"Don't bother searching on Google Play for it, though -- the researchers aren't in the business of enabling people to rip off transit systems," Vaas said. "Instead, they've put out a tweaked version, called UltraCardTester, to allow people to test their local transit system's security. You can't rewrite your subway card balance, but you can let the transit people know that their system might be insecure."

Does Your Phone Have Malware?

With stories like these continuing to arise, does that mean the Android platform is less secure than others? This has been hotly debated for years now. But one thing is certain: if you own a device that's running the Android operating system, chances are good that your device is vulnerable to attack, according to Duo Security. Duo's data, collected by its mobile "vulnerability assessment" app, shows that more than half of Android devices have unpatched vulnerabilities.

"Since we launched X-Ray, we've already collected results from over 20,000 Android devices worldwide. Based on these initial results, we estimate that over half of Android devices worldwide have unpatched vulnerabilities that could be exploited by a malicious app or adversary," Duo's Jon Oberheide wrote in a blog post.

"Yes, it's a scary number, but it exemplifies how important expedient patching is to mobile security and how poorly the industry (carriers, device manufacturers, etc) has performed thus far. We feel this is actually a fairly conservative estimate based on our preliminary results, the current set of vulnerabilities detected by X-Ray, and the current distribution of Android versions globally."
 

Tell Us What You Think
Comment:

Name:

Meaghen:

Posted: 2012-09-26 @ 11:47am PT
Great article. With all of the recent high-profile security breaches, it is important for everyone to be extra careful with their information. This is definitely an issue that needs to be addressed. At Mosaic Technology, we are huge proponents of being preventative in data security.

Meaghen



Salesforce.com is the market and technology leader in Software-as-a-Service. Its award-winning CRM solution helps 82,400 customers worldwide manage and share business information over the Internet. Experience CRM success. Click here for a FREE 30-day trial.


 Mobile Tech
1.   Is the Amazon Fire Phone a Winner?
2.   Review: Amazon's New Fire Phone
3.   Apple Smart Watch Patent Surfaces
4.   iPhone 6: Bad for Apple Tablet Sales?
5.   GoTenna: Work-Thru for Dead Zones


advertisement
Android SMS Worm on the Loose
Malware lets bad actors cash in.
Average Rating:
Is the Amazon Fire Phone a Winner?
It coulda been a contender -- but isn't.
Average Rating:
Review: Amazon's New Fire Phone
New ways to navigate, discover, shop.
Average Rating:
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Researchers Working To Fix Tor Security Exploit
Developers for the Tor privacy browser are scrambling to fix a bug revealed Monday that researchers say could allow hackers, or government surveillance agencies, to track users online.
 
Wall Street Journal Hacked Again
Hacked again. That’s the story at the Wall Street Journal this week as the newspaper reports that the computer systems housing some of its news graphics were breached. Customers not affected -- yet.
 
Dropbox for Business Beefs Up Security
Dropbox is upping its game for business users. The cloud-based storage and sharing company has rolled out new security, search and other features to boost its appeal for businesses.
 

Enterprise Hardware Spotlight
Microsoft Makes Design Central to Its Future
Over the last four years, Microsoft has doubled the number of designers it employs, putting a priority on fashioning devices that work around people's lives -- and that are attractive and cool.
 
Contrary to Report, Lenovo's Staying in Small Windows Tablets
Device maker Lenovo has clarified a report that indicated it is getting out of the small Windows tablet business -- as in the ThinkPad 8 and the 8-inch Miix 2. But the firm said it is not exiting that market.
 
Seagate Unveils Networked Drives for Small Businesses
Seagate is out with five new networked attached storage products aimed at small businesses. The drives are for companies with up to 50 workers, and range in capacity from two to 20 terabytes.
 

Navigation
Enterprise Security Today
Home/Top News | Network Security | Viruses & Malware | Cybercrime | Security Solutions | Mobile Security | Disaster Recovery | Windows Security
Data Security | EST Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.